В пошуці Applications Security Engineer для роботи на проекті по розробці сучасного мобільного банку нової хвилі для ринку США.
Продукт в live з 2018 року, налічує понад 100.000 активних користувачів.
Київ, Дніпро/ або віддалено
During our twelve-year journey, we help our clients to create apps and enterprise ecosystem from scratch in order to achieve their business goals. And now we’re looking for an experienced SecOps Engineer to join a fast growing fintech product. It’s a modern mobile neo-banking application that allows users to create and manage accounts for individuals and legal entities, solves real-life problems and helps millions of people across the USA.
We’re looking for someone who:
— Embodies our EAGER values—is ethical, adaptable, gritty, empathetic, and remarkable.
— Has a minimum of two years in application security or related field.
— Has knowledge of programming languages (Python/JS/Java/Go).
— Is familiar with software development methodologies, processes, and tools.
— Is familiar with modern DevOps practices and tools.
— Familiar with most common implementations of the Threats (e.g. XSS, SQL Injection, XSRF, buffer overruns, brute force, rainbow tables, DoS etc.) and how they match the general classification
— Has working experience with application security tools like BurpSuite, OWASP ZAP, Metasploit, etc.
Ideal candidate would be someone who:
— Has prior experience in Security Development Lifecycle.
— Has experience with Application Security Testing (SAST, DAST, SCA, etc.)
— Experience with Container Orchestration, Automation, and Security Configuration Management (Kubernetes, Jenkins, Terraform, Puppet, Ansible, etc)
— Has experience with AWS (or other cloud platforms)
— Participation in bug bounty programs and security research will be an advantage
— Certifications in Security will be an advantage
— Serve as the subject matter expert for application security, providing guidance to Engineering and Product
— Develop secure system design and secure coding recommendations.
— Design and implement SDLC practices including automated and manual security tests, code review, etc.
— Integrate security controls in CI/CD and operational pipelines.
— Manage product bug bounty and drive different program initiatives and promotions.
— Implement and manage tools (e.g., web security scanners) to help test and monitor product security
What you’ll get from working with us:
— Great compensation and social packages
— Full financial and legal support for private entrepreneurs
— Opportunities for professional growth
— Individual development plan
— Team buildings and corporate activities
— English lessons with native speakers
— The best networking opportunities with international clients
We expect our future colleague to have a strong security management background and good communication skills. Join us and send your CV
Yalantis has been providing software development services for over 12 years, helping clients around the world implement their ideas and create projects that contribute to business growth. We work on projects in the domains of healthcare, real estate, logistics, and telecommunications for clients in the US, Western Europe, and the Middle East. Yalantis is characterized by a high level of professionalism at all project stages, from idea analysis to product promotion.
We are team players and we hire people with a similar outlook, because the success of our team is integral to our own success. We support and motivate each other to achieve our common goals by creating professional development plans, enhancing our expertise, and sharing our knowledge. Yalantis offers a stable and exciting job, IT career opportunities, an enjoyable work environment, and an attractive compensation package.
We’d be happy if you joined us!
DOU company page:
This job is no longer active.